Information Security & Technology

Main menu

Monthly Archives: December 2010

MUST READ! recently (12/11/2010) Infowar-monitor.net came out with very good analysis on hackers activities inside their own network called “KOOBFACE: Inside a Crimeware Network” by Nart Villeneuve with a foreword by Ron Deibert and Rafal Rohozinski. Good work guys!

Not a related image.

Its good to see this kind of documentation/analysis where its drilled down to technical methodology, related community and financial operation (affiliate programs and monetization strategies). This really showed the organized cybercrime (OCC) really making alot of money from their activities. As stated there, KOOBFACE activities earning more than USD2million a year.

KOOBFACE is a command and control server where able to download archived copies of Koobface’s command and control infrastructure. The contents of the archived revealed the malware, code and databases used to maintain Koobface.

How do they do that? Please read through this well documented analysis.

While I was searching & looking for random article on Dionaea. I found someone RT about Google Hack Honeypot! Sound interesting.

As what we know, Google or other search engines have been used for many purposes such as finding useful information, important websites and latest news on different topics, Google index a huge number of web pages that are growing daily. From the security prospective these indexed pages may contain different sensitive information” Google hack involves using advance operators in the Google search engine to locate specific strings of text within search results. Some of the more popular examples are finding specific versions of vulnerable Web applications.